[perl-IO-Socket-SSL] Add CVE reference in changelog for CVE-2010-4334
Paul Howarth
pghmcfc at fedoraproject.org
Fri Dec 17 16:53:33 UTC 2010
commit 69a39b95e4d57aed35dccd82f82c61e5e63278e2
Author: Paul Howarth <paul at city-fan.org>
Date: Fri Dec 17 16:53:16 2010 +0000
Add CVE reference in changelog for CVE-2010-4334
perl-IO-Socket-SSL.spec | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
---
diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec
index d6df956..9d9cad3 100644
--- a/perl-IO-Socket-SSL.spec
+++ b/perl-IO-Socket-SSL.spec
@@ -73,7 +73,7 @@ done
CPAN RT#63740
* Mon Dec 6 2010 Paul Howarth <paul at city-fan.org> - 1.35-1
-- Update to 1.35
+- Update to 1.35 (addresses CVE-2010-4334)
- if verify_mode is not VERIFY_NONE and the ca_file/ca_path cannot be
verified as valid, it will no longer fall back to VERIFY_NONE but throw an
error (http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606058)
More information about the perl-devel
mailing list